SMB BUSINESS CYBER SECURITY GUIDE – AVOID PHISHING ATTACKS In a typical phishing attack, scammers send fake emails to thousands of people, asking for sensitive information (such as bank details), or containing links to bad websites. They might try to trick you into sending money, steal your details to sell on, or they may have […]

SMB BUSINESS CYBER SECURITY GUIDE – AVOID PHISHING ATTACKS

In a typical phishing attack, scammers send fake emails to thousands of people, asking for sensitive information (such as bank details), or containing links to bad websites. They might try to trick you into sending money, steal your details to sell on, or they may have political or ideological motives for accessing your organisation’s information.

Phishing emails are getting harder to spot, and some will still get past even the most observant users. Whatever your business, however big or small it is, you will receive phishing attacks at some point. Our easy steps to help you identify the most common phishing attacks, but be aware that there is a limit to what you can expect your users to do.

1: Configure staff and contractor accounts with the “least privilege” lowest user rights required to perform their role, to reduce the impact of successful attacks.

2: Educate staff on normal ways of working internally and with other organisations, so that they’re better equipped to spot requests that are out of the ordinary.

3: Educate staff to check for the obvious signs of phishing

poor spelling, grammar and punctuation.

official-looking emails by including logos and graphics. Is the design (and quality) what would you’d expect from the supposed sender

Individually named or addressed to ‘valued customer’, ‘friend’, ‘colleague’.

Veiled threat i.e act urgently.

Unexpected email from high-ranking person within your organisation.

If it sounds too good to be true, it probably is.

4: Report all attacks to your IT team to log on their incident management system. Do not punish staff if they get caught out. It discourages people from reporting.

5: Check your digital footprint to ensure you are not sharing more than you need to i.e. information that is gleaned from your website and social media accounts.

Our impartial, portfolio Business Technology Leaders demystify technology to help you innovate and make use of the latest trends to grow through the benefits of Digital Transformation, business process efficiency, innovation and increased scalability while maintaining cyber security, without the cost or effort of recruiting a full time technology leader. If you want to know more visit https://businesstechnologyleaders.com/services/cyber-security/ or contact me ([email protected]) for an informal, confidential, impartial, no obligation and free discussion on how we can add value to your business.

#Cyber Security, #Data Security, #Cyber Security Planning, #Cyber Security Recovery, #ISO27001,